{"id":"https://openalex.org/W2893039392","doi":"https://doi.org/10.15439/2018f208","title":"A new WAF-based architecture for protecting web applications against CSRF attacks in malicious environment","display_name":"A new WAF-based architecture for protecting web applications against CSRF attacks in malicious environment","publication_year":2018,"publication_date":"2018-09-26","ids":{"openalex":"https://openalex.org/W2893039392","doi":"https://doi.org/10.15439/2018f208","mag":"2893039392"},"language":"en","primary_location":{"id":"doi:10.15439/2018f208","is_oa":true,"landing_page_url":"https://doi.org/10.15439/2018f208","pdf_url":"https://annals-csis.org/proceedings/2018/drp/pdf/208.pdf","source":{"id":"https://openalex.org/S4220651875","display_name":"Annals of Computer Science and Information Systems","issn_l":"2300-5963","issn":["2300-5963"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":"https://openalex.org/P4310317484","host_organization_name":"Polskie Towarzystwo Informatyczne","host_organization_lineage":["https://openalex.org/P4310317484"],"host_organization_lineage_names":["Polskie Towarzystwo Informatyczne"],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annals of Computer Science and Information Systems","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://annals-csis.org/proceedings/2018/drp/pdf/208.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5042958187","display_name":"Michal Srokosz","orcid":"https://orcid.org/0000-0002-6061-1570"},"institutions":[{"id":"https://openalex.org/I3017851245","display_name":"Polish-Japanese Academy of Information Technology","ror":"https://ror.org/01v542j61","country_code":"PL","type":"education","lineage":["https://openalex.org/I3017851245"]}],"countries":["PL"],"is_corresponding":true,"raw_author_name":"Michal Srokosz","raw_affiliation_strings":["Polish-Japanese Academy of Information Technology ul. Koszykowa 86, 02-008 Warszawa, Poland"],"affiliations":[{"raw_affiliation_string":"Polish-Japanese Academy of Information Technology ul. Koszykowa 86, 02-008 Warszawa, Poland","institution_ids":["https://openalex.org/I3017851245"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5050221333","display_name":"Damian Rusinek","orcid":"https://orcid.org/0000-0002-4694-562X"},"institutions":[{"id":"https://openalex.org/I174183983","display_name":"Maria Curie-Sk\u0142odowska University","ror":"https://ror.org/015h0qg34","country_code":"PL","type":"education","lineage":["https://openalex.org/I174183983"]}],"countries":["PL"],"is_corresponding":false,"raw_author_name":"Damian Rusinek","raw_affiliation_strings":["Maria Curie-Sklodowska University pl. Marii Curie-Sk\u0142odowskiej 5, 20-031 Lublin, Poland"],"affiliations":[{"raw_affiliation_string":"Maria Curie-Sklodowska University pl. Marii Curie-Sk\u0142odowskiej 5, 20-031 Lublin, Poland","institution_ids":["https://openalex.org/I174183983"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5026662040","display_name":"Bogdan Ksi\u0119\u017copolski","orcid":"https://orcid.org/0000-0003-1904-3222"},"institutions":[{"id":"https://openalex.org/I174183983","display_name":"Maria Curie-Sk\u0142odowska University","ror":"https://ror.org/015h0qg34","country_code":"PL","type":"education","lineage":["https://openalex.org/I174183983"]}],"countries":["PL"],"is_corresponding":false,"raw_author_name":"Bogdan Ksiezopolski","raw_affiliation_strings":["Maria Curie-Sklodowska University pl. Marii Curie-Sk\u0142odowskiej 5, 20-031 Lublin, Poland"],"affiliations":[{"raw_affiliation_string":"Maria Curie-Sklodowska University pl. Marii Curie-Sk\u0142odowskiej 5, 20-031 Lublin, Poland","institution_ids":["https://openalex.org/I174183983"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5042958187"],"corresponding_institution_ids":["https://openalex.org/I3017851245"],"apc_list":null,"apc_paid":null,"fwci":2.5076,"has_fulltext":false,"cited_by_count":14,"citation_normalized_percentile":{"value":0.90065934,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":"15","issue":null,"first_page":"391","last_page":"395"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9991999864578247,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7425703406333923},{"id":"https://openalex.org/keywords/architecture","display_name":"Architecture","score":0.6405389904975891},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.44175225496292114},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.3252655863761902}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7425703406333923},{"id":"https://openalex.org/C123657996","wikidata":"https://www.wikidata.org/wiki/Q12271","display_name":"Architecture","level":2,"score":0.6405389904975891},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.44175225496292114},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.3252655863761902},{"id":"https://openalex.org/C153349607","wikidata":"https://www.wikidata.org/wiki/Q36649","display_name":"Visual arts","level":1,"score":0.0},{"id":"https://openalex.org/C142362112","wikidata":"https://www.wikidata.org/wiki/Q735","display_name":"Art","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.15439/2018f208","is_oa":true,"landing_page_url":"https://doi.org/10.15439/2018f208","pdf_url":"https://annals-csis.org/proceedings/2018/drp/pdf/208.pdf","source":{"id":"https://openalex.org/S4220651875","display_name":"Annals of Computer Science and Information Systems","issn_l":"2300-5963","issn":["2300-5963"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":"https://openalex.org/P4310317484","host_organization_name":"Polskie Towarzystwo Informatyczne","host_organization_lineage":["https://openalex.org/P4310317484"],"host_organization_lineage_names":["Polskie Towarzystwo Informatyczne"],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annals of Computer Science and Information Systems","raw_type":"proceedings-article"},{"id":"pmh:oai:doaj.org/article:44f57c007445491c86d4c19dc927a61e","is_oa":true,"landing_page_url":"https://doaj.org/article/44f57c007445491c86d4c19dc927a61e","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Annals of computer science and information systems, Vol 15, Pp 391-395 (2018)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.15439/2018f208","is_oa":true,"landing_page_url":"https://doi.org/10.15439/2018f208","pdf_url":"https://annals-csis.org/proceedings/2018/drp/pdf/208.pdf","source":{"id":"https://openalex.org/S4220651875","display_name":"Annals of Computer Science and Information Systems","issn_l":"2300-5963","issn":["2300-5963"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":"https://openalex.org/P4310317484","host_organization_name":"Polskie Towarzystwo Informatyczne","host_organization_lineage":["https://openalex.org/P4310317484"],"host_organization_lineage_names":["Polskie Towarzystwo Informatyczne"],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Annals of Computer Science and Information Systems","raw_type":"proceedings-article"},"sustainable_development_goals":[{"score":0.6700000166893005,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2893039392.pdf","grobid_xml":"https://content.openalex.org/works/W2893039392.grobid-xml"},"referenced_works_count":7,"referenced_works":["https://openalex.org/W1756225116","https://openalex.org/W2061008238","https://openalex.org/W2339647006","https://openalex.org/W2460856054","https://openalex.org/W2512714308","https://openalex.org/W2540373227","https://openalex.org/W2597472767"],"related_works":["https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W2376932109","https://openalex.org/W2382290278","https://openalex.org/W2350741829","https://openalex.org/W2130043461","https://openalex.org/W2530322880","https://openalex.org/W1596801655"],"abstract_inverted_index":{"Web":[0],"application":[1,5],"firewall":[2,6],"is":[3,49,55,69,86,99],"an":[4],"for":[7,71,118],"HTTP":[8,15],"applications.Typical":[9],"WAF":[10,135],"uses":[11],"static":[12,134],"analysis":[13],"of":[14,21],"request,":[16],"defined":[17],"as":[18,37],"a":[19,114,132],"set":[20],"rules,":[22],"to":[23,59,80,88,101],"find":[24],"potentially":[25],"dangerous":[26],"payloads":[27],"in":[28,125,149],"the":[29,53,67,76,82,91,102,107,147,150],"requests.Generally,":[30],"these":[31],"rules":[32],"cover":[33],"common":[34],"attacks":[35,124],"such":[36],"cross-site":[38],"scripting":[39,48],"(XSS)":[40],"and":[41,57,97,139],"SQL":[42],"injection":[43],"which":[44],"are":[45],"server-related":[46],"attacks.Cross-site":[47],"clientside":[50],"attack":[51,68],"however":[52],"server":[54],"attacked":[56],"forced":[58],"return":[60],"malicious":[61,126],"response.Rule-based":[62],"approach":[63,129,136],"becomes":[64],"useless":[65],"when":[66],"client-related,":[70],"example":[72],"employing":[73],"malware":[74],"on":[75,143],"banking":[77],"site.Malware":[78],"allows":[79],"change":[81],"transfer":[83,95],"data.This":[84],"scenario":[85],"hard":[87],"detect":[89],"because":[90],"browser":[92],"displays":[93],"valid":[94],"data":[96,98],"changed":[100],"thieves'":[103],"accounts":[104],"number":[105],"at":[106],"communication":[108],"stage.In":[109],"this":[110],"paper":[111],"we":[112,130],"introduce":[113],"new":[115],"web-based":[116],"architecture":[117],"protecting":[119],"web":[120],"applications":[121],"against":[122],"CSRF":[123],"environemnt.In":[127],"our":[128],"extend":[131],"classic,":[133],"with":[137],"historical":[138],"behavioral":[140],"analysis,":[141],"based":[142],"actions":[144],"performed":[145],"by":[146],"user":[148],"past.":[151]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":3},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":4}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}